adk-frontend
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as technical documentation for developers, providing patterns for authentication, client management, and type safety when connecting frontends to Botpress ADK bots.
- [SAFE]: Authentication guidelines correctly prioritize security by recommending cookie-based storage with
SameSite=LaxandSecureflags, rather thanlocalStorage, to mitigate XSS and CSRF risks. - [SAFE]: The documentation includes explicit security warnings against logging Personal Access Tokens (PATs) and committing them to version control systems.
- [SAFE]: All external dependencies mentioned, such as
@botpress/client,zustand, andposthog-js, are either official vendor packages from the skill author or well-known, reputable community libraries. - [SAFE]: The OAuth flow described for token acquisition is a standard pattern for the Botpress ecosystem and includes instructions for immediate removal of tokens from URLs to limit exposure.
Audit Metadata